IPS Suricata2MikroTik -CE- is a module for Suricata to read eve.json file and search specifics alert to block the source. This connect to MikroTik via API to add the IP to block.
I'm having issues with it connecting to my mikrotik device.
./start_suricata works fine
./start_ips works but it doesn't do its job.
Based on my mikrotik logs, when I execute the ./start_ips, SSH authentication has been successful but it will logged out right away. And when run "ps aux | grep php" there were no php process running in background.
What would be the issue? I followed all the steps you've written on this page but it's not working on my end. I'm not really good with php or programming. Still new to it. And btw, thank for this amazing project.
Thank you and I will really appreciate your help on this one.
Hello!
I'm having issues with it connecting to my mikrotik device.
./start_suricata works fine
./start_ips works but it doesn't do its job.
Based on my mikrotik logs, when I execute the ./start_ips, SSH authentication has been successful but it will logged out right away. And when run "ps aux | grep php" there were no php process running in background.
What would be the issue? I followed all the steps you've written on this page but it's not working on my end. I'm not really good with php or programming. Still new to it. And btw, thank for this amazing project.
Thank you and I will really appreciate your help on this one.